lumma | 48abeeb6a5fb89c37e451f73d40a672d808264b14ed7163a622100fb94d7d053 | Triage

Sharing

General

Target

#Pa$$w0rD__6654--0peɴ_Set-Up#$.rar
Size

15.4MB
Sample

250109-mkvp7axmct
MD5

e4b9f067e0a7f3b2d6156d2679fd03d5
SHA1

07f0fe0c79f65db10b7586b81282402241dd88ad
SHA256

48abeeb6a5fb89c37e451f73d40a672d808264b14ed7163a622100fb94d7d053
SHA512

8179d0cf9be8bfb0c75cf8dda73645ab4cf0389b440d2afc692850230c25d3fb208690e679bf8de82f85ab551ac1bd618299bf7fe494bc9886d36e951773afdb
SSDEEP

393216:TFfcTb4DjXbZPtueI3aCwuNlfIUsZNuXeu3T50:TFfcXIZPtunawOBHuOu3O

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://rhythmsellk.cyou/api

Targets

- Target
  
  #Pa$$w0rD__6654--0peɴ_Set-Up#$.rar
- Size
  
  15.4MB
- MD5
  
  e4b9f067e0a7f3b2d6156d2679fd03d5
- SHA1
  
  07f0fe0c79f65db10b7586b81282402241dd88ad
- SHA256
  
  48abeeb6a5fb89c37e451f73d40a672d808264b14ed7163a622100fb94d7d053
- SHA512
  
  8179d0cf9be8bfb0c75cf8dda73645ab4cf0389b440d2afc692850230c25d3fb208690e679bf8de82f85ab551ac1bd618299bf7fe494bc9886d36e951773afdb
- SSDEEP
  
  393216:TFfcTb4DjXbZPtueI3aCwuNlfIUsZNuXeu3T50:TFfcXIZPtunawOBHuOu3O
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer